VDB
CVE-2026-34073
CVE-2026-34073
PUBLISHED
CVSS 1.7000000476837158 LOW
cryptography has incomplete DNS name constraint enforcement on peer names
EPSS 0.01% · 1.0th percentile
Risk Scores
CVSS 4.0
1.7000000476837158
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
EPSS Score
0.01%
1.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| pyca | cryptography | < 46.0.6 |
| cryptography.io | cryptography | 0 |
| PyPI | cryptography | 0 |
Exploit Intelligence
- CIRCL seen: CVE-2026-34073 (circl-sighting)
- CIRCL seen: CVE-2026-34073 (circl-sighting)
- https://github.com/pyca/cryptography/security/advisories/GHSA-m959-cc7f-wv43 (circl)
- tmp_audit.json (github-poc)
- tmp_audit.json (github-poc)
- tmp_audit.json (github-poc)
- tmp_audit.json (github-poc)
- tmp_audit.json (github-poc)
- tmp_audit.json (github-poc)
- tmp_audit.json (github-poc)
…and 57 more exploits
Timeline
- Mar 27, 2026 CVE Published
- Mar 28, 2026 Security Advisory
- Mar 30, 2026 PoC Published
- Mar 30, 2026 PoC Published
- Apr 6, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
References
- https://github.com/pyca/cryptography/security/advisories/GHSA-m959-cc7f-wv43 url
- https://www.ibm.com/support/pages/node/7271707 advisory
- https://www.ibm.com/support/pages/node/7271922 advisory
- https://www.ibm.com/support/pages/node/7271681 advisory
- https://www.ibm.com/support/pages/node/7271765 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-34073 advisory
- https://github.com/pyca/cryptography package
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37451 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37445 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37460 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37449 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37450 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37466 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37468 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37444 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37461 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37459 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37446 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37465 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37448 advisory
…and 21 more